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TRANSACTION CODE 

(57)Abstract: 

PROBLEM TO BE SOLVED: To control access to 
information protected by a server and to prevent the 
redistribution of the information by allocating a specified key 
including the identifier of a customer and transmitting it to the 
customer so as to decode ciphered information and monitoring 
the distribution of the information in a customer specified base 
by the key. 

SOLUTION: The server 12 of a computer system 10 
communicates with the customers 14-20 through a public 
communication channel 21, receives an access request from 
the customers 14-20 and allocates a decoding key or a 
password. Then, among the information provided in the data 
base of the server 12, an access program protected by ciphers 
and the selected information (digital music score) are 
transmitted through the communication channel 21 to the 
customers 14-20. In this case, in order to decode the ciphered 
information in connection with the request from the 
customers, the specified key including the identifier of the 
customer is allocated and transmitted to the customer and the 
distribution of the ciphered information is monitored by using the decoding key. 
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ENCRYPTION SYSTEM WITH TTtANSACTION CODED DECRYPTION KEY 



Field of the InventioTi 

The present invention relates generally to monitoring the distribution of 
information that is accessible through a public network and, in particular, to a method 
and system for using key-based encryption to inhibit and track unauthorized 
distribution by a key holder. The invention has particular application with regard to 
die commercial distribution of copyrighted works or other proprietary subject matter 
over a public network. 

gackground of the Inventipp 

The advent of widely available public computer networks, and particularly 
public networks capable of supporting multimedia functions such as the Internet, 
presents a great opportunity for consumers and content providers such as music 
publishers. Such networks afford content providers increased access to an ever 
growing market. Consumers benefit from improved access lo information and greater 
convenience. Moreover, in some cases, the digital nature of tiie information received 
over a network is preferable to more conventional modes such as printed media. For 
example, digital sheei music can be printed to replicate its printed media counterpart. 
Additionally, the digital sheet music can be directly processed by audio and video 
playback programs, as well as by a variety of digital musical instruments and 
equipment such as Musical Instrument Digital Interface (MIDI) devices. 

Despite this potential, content providers have been reluctant to embrace this 
market in many cases. One reason for this reluctance has been a perceived threat that 
access to proprietary subject matter such as copyrighted music over a public network 
will erode ownership interests in and revenues from such subject matter. The 
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concern is that unscrupulous persons will wrongfully access such subject matter or 
that authorized users, having rightfully accessed the subject maDer, will thereafter 
distribute the subject matter in contravention of the content providers* rights. 
Although such possibilities exist in connection with other modes of distribution, 
public network distribution is thought by some to present peculiar dangers due to the 
case with which widespread distr^ution can be accomplished, e.g,^ via bulletin 
boards and the lilce. 

Indeed » conventional computer security systems developed lo control access to 
restricted access data arc not well-suited to address these concerns of content 
providers. For example ^ access password systems are somewhat effective in liTniting 
access to designated information, but do not afford protection once the rnformation is 
transmitted from the server system to a public network. Encrj^ption systems have 
becB devised to prevent use of information that is wrongfully intercepted as a result of 
transmission over a network. In this regard, in key-based cncrj-ption systems, 
authorized clients are provided with a decryption key. The protected information is 
then transmitted in encrypted form to prevent use by any intercepting party. The 
authorized diem receives the eticrypted information and uses the decT>'ptiocn key to 
decrypt ilie information. Unfortunately, such cucrypticxi systems generally do not 
provide adequate safeguards to discourage the authorized clients from subsequently 
redistributing the protected information. 

Summary of the Invention 

The present invention is directed to a method^ and system for controlling 
access to protected information from a server, as well as discouraging and tracking 
subsequent redistribution of such information after it has been transmitted from the 
server. The invention facDitates comoiercial distribution of prdprieiar>' subject matter 
through public or open networks by providing improved protection of proprietary 
rights and increasing the likelihood that infringing activity will be corrected. 



(1 8) 



^m^l 0-301904 



■ 3 

Moreover, the invention provides increased marketing flexibility by allowing for 
limited, multiple-use authorization and pre-purchase sampling of copyri^ited works 
or oiher confidential subject maner. The invention also provides a novel, encryption 
on-demand capability which, it is believed* has not t)een feasible in conneciion with 
physical storage media such as CD-ROM and magnetic storage media. 

According to one aspect^ of the present invention, a method and corresponding 
system is provided for monitoring distribution of information accessible over a public 
network ou a client-specific basis. The method includes the steps of: establishing a 
database of information at a server; cncr>pting at least a portion of the information 
asing a key-based encryption system; in connection with a request by a client, 
assigning a client-specific Icey to the client; and mlnsmitdng the key to the client. 
The client-specific key includes some indicia that can be used to identify the client, 
thereby allowing for mordtorLng of information use on a client-specific basis. 

The database can include various types of informadon, for example, digital 
sheet music, literary or artistic works, software programs, or other subject matter 
transmittable in digital form. Any identifying information can be coded into the key 
for client identification. Examples include: personal or fmancial data provided by the 
client; address information for the clients' computer or web site; account numbers or 
serial nimibers; other information for identifying the computer used by the client; and 
abbreviated or encoded versions of any of the above. Conveniently, such infomaation 
can be stored in a sepaxaLc client database and inde;Led to tbe key. Preferably, d;e 
decryption system requires entry of the key each time tiic protected information is 
used (i.e. . the system does not store the information in decrypted form) and appends 
the chent identifying information to any redistributed digital or hard copies of the 
information. In this manner, the client is discoursed from redistributing the 
protected information because the key is required to use the information in its original 
digital form, and distribution of the key or an identified haid copy may involve 
disclosure of sensitive information or otherwise create a traceable record of the 
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client's infringing activity. 

According to another aspect of the present invetition, a method and 
corresponding system is provided for enabling transaction-specLfic access 
authorization with respect to piotectEd information. The method involves the use cf a 
key-based encryption system, such as generally discussed above, where decryption 
keys are assigned on a transaction-by-transaction basis. That is, decryption keys are 
assigned on demand in connection with a transaction involving communication of ihe 
protected information from the server to a client. For C3Munplc, the transaction may 
involve the purchase of a copy of sheet music, a digital musical score or other 
protected mformaiion, or it may involve paying a license fee to use such information 
a designated number of times, for a designated duration, or during a designated 
license tenn. The key can include information sufficient lo identify the subject 
information and/or the client.. The invention thereby allows for transaction-specific 
authorization and increased marketing/distribution possibilities. 

According to a further aspect of the present invention, partially encrypted 
mformation is transmitted prior to providing a decryption key so as to allow for 
sampling of the information before a transaction is consummated. In particular, the 
associated method involves establishing a database of information at a network server, 
cnciypting a portion of the infoimation and receiving an access request. Upon 
receiving an access request, a selected portion of the information is transmitted in 
partially encrypted form and, thereafter, a decryption key is transmitted to the client. 
By way of example, the partially encrypted information can be sheet music where 
only the first page of a score is unencrypted for viewing. The cJicnt can thereby 
browse through a selection of scores prior to making a purchasing decision, 
authorizing paymsnt and, in response, receiving a decryption key. 

According to a still further aspect of the present invention^ a method and 
corresponding system is provided for enabhng por.t-transmission monitoring of 
information use by a client. The method includes the steps of: receiving encrypted 
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infonnation and storing the infoixoatioa in memory in its encrypted form; receiving a 
decryption key and storii]^ the key in xnemorj' separate from the encrypted 
infonnation, for example, in a cache; identifying a requesi by a client to access the 
information; in response to the request, retrieving the cncxypted infonnation and key 
from memory and, thereafter, decrypting the information; and outputting the 
information for use by the client. The method can be impleineated, for example, by 
playback/display software running on a client computer. The software can be 
programmed for limiting access to the proDectcd information according to transaction 
parameters, e.g. . limiting access to the scope of a license purchased by the client. 
The access request can be an "open file," "display," or "print " message or the like. 

In a pref creed implementation, the protected infonnation is never saved in its 
decrypted form but, rather, is only decrypted on a just-in-timc basis when the 
corresponding file(s) is opened for use. Accordingly, redistribuiioa of the 
informaiion in its decrypted form is disco'jraged or practically prevented. Moreover, 
in order to permit third-party use of the infonnation, jecistribution of the information 
in its encr>'pted form will also require distribution of the decryption key, which may 
be an unattractive option for the client. 

The present invention thus allows for monitoring access to protected 
information on a server and subsequent use or redistribution by a client. 
Additionally, the invention allows for tracking of any unauthorized redistribution and 
thus facilitates enforcement of server rights. The invention also provides for 
increased marketing/distribution options and novel on-demand decryption key coding. 
By virtue of these and other advantages, the invention promotes distribution of 
proprietary subject matter over public networks to the mutual benefit of consumers 
and content providers. 

Brief Dcf^cription of the Drawjcga 

For a more complete understanding of the present invention and further 
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advantages thereof, reference is now rtxade to the following detailed desciipdon. taken 
in conjunction with tiie drawings, in which: 

Fig. 1 is a sdiematic diagram of a compoter syBtem in accordaix:e with the 
present invention; 

Fig. 2 is a chart providii^ a functional overview of the distribution monitoring 
system of the present" invention; 

Fig. 3 is a diagram of the Music Viewer download function of the system of 

Fig. 2; 

Fig. 4 is a diagram of the music download function of the system of Fig. 2; 
Fig. 5 is a diagram of the on-line music purchase function of the system of 

Fig. 2; 

Fig. 6 is a flow chart of ihe music printing function of the system of Fig. 2; 
Fig. 7 is a flow chart of the music viewing function of the system of Fig. 2; 
Fig. 8 is a schematic diagram of the encryption/decryption components of tiie 
system of Fig. 2; and 

Fig. 9 is a flow chan of the encryption/decryption function of the system of 

Fig. 2. 

D^T^iiled pesc'jption of thg faveotion 

The distribution monifioring system of the present invention is usefiil in a 
variety of apphcations where it is desired to monitor the distribution of proprietary 
subject maner over a public network, In the follcfwing description, the invention is 
set forth in the context of monitoring distribution of digital musical scores over a 
network. It will be appreciated that this. particular application is set forth for the 
purpose of illustrating the invention, and various aspects of the invention have 
broader application as defined by the claims below. 

Fig. 1 illustrates an encryption 'secured computer system 10 according to the 
present inverition. The computer system 10 includes a server 12 Utat can 
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communicate with clients 14-20 across a public network 21 such as the Internet. In 
the case of the Internet, the server 12 can be accessed via the Netscape 2,01 or 
Microsoft Internet Explorer 3.0, or higher browsers. The server 12 generally 
includes a processor 22 and a library or database of digital musical scores stored in. a 
memoiy 24 as files 26-32. As discussed xn detail below, the server 12 is operative 
for receiving access requests from clients 14-20, assigning decryption keys or 
passwords and transmitting an accessing program and selected scores to the 
clients 14-20 over network 21. A number of other functions relating to receiving 
payment, indexing and storing encoded decryption passwords and the like are also 
perfomiBd by server 12. 

For present purposes, the clients 14-20 may be considered as being 
functionally eguivaleni. Details of only one of the clients 14 are shown in Fig. 1. 
Generally, the client 14 includes a central processing unit (CPU) 34, an internal 
cache 36 and/or external cache 38, memory 40 and input/ouq>ut (I/O) hardware 42, 
all interconnected via data bus 44. The CPU, which may include any suitable 
microprocessor, is operative for downloading and running the accessing program, 
accessing memory 40 and caches 36 and 38, and communicating with I/O hardware 
42. In The illustrated embodiment, the CPU 34 also includes a built-in, internal cache 
for storing the dcciyption key used to decrypt downloaded musical scores. 
Generally, cache 36 is an area of extremely fast Random Access Memory (RAM) for 
storing frequently used or time critical dau so as to allow for faster operation. The 
cache 36 can be accessed more rapidly than memory 40. AUemali vely, the 
decrypting key can be stored in an external cache 38, which may coicprise a RAtVl 
chip located on the computer motherboard. Memory 40, which is separate from 
caches 36 and 38, may include computer nismor>^ as well as the storage of floppy 
disks, CD-ROM drives and hard drives. The I/O hardware 42 can include a number 
of types of devices including a mouse, keyboard or other user input device; a viewha^ 
monitor; a primer; or a MIDI device. 
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Fig. 2 provides a functional overview of a music distribution monitoring 
system 46 used in comection with the computer system 10 of Fig. 1. As shown in 
Fig. 2, the moni taring system 46 can be brolcen down into a number of functions that 
are executed by logic on the server and/or a client: The functions of the illustrated 
system 10 include: downloading (48) a music accessing program, in this case 
designated the "Music Viewer for use by a client in accessing music files stored on 
the server; downloading (50) a selected musical score from the server; purchasing 
(52) music on-line (and thereby obtaining an access license and encoded decryption 
key); printing (54) and/cr viewing (56) the music and music encryption/decryption. 
It win be appreciated that the music msy also be reproduced from digital infoimation 
using a MIDI device or the like. Each of these functions is discussed in turn below. 

Fig. 3 illustrates the Music Viewer download function of one implementation 
of the present invention. After communication between the server and client has been 
established through the network, the client initiates the do\^Tiload function by 
requesting (58) the server lo download the program. This request can be entered by 
following appropriate prompts froiri the server site. The server receives (60) the 
download request and sends (62) the Viewer software package lo the client. Upon 
receiving (64) the software package, the client runs the setup code to install the Music 
Viewer software. In order to access musical scores stored in the server library in the 
illu.strated system, the client is assigned a unique Viewer identification code. 
Accordingly, the client is prompted to request (66) a Viewer ED as part of the 
download procedure. In response to the ID request, the server generates (68) a 
Viewer ID and logs the ID in a Viewer database. The server then sends (70) the 
newly generated Viewer ID to the client aixi logs the transmission time and date, the 
Internet Protocol QF) address (or similar information for other networks) of the 
Client, and the client's machine name or type ( as entered by the client user or 
determined from a transmission header or the like). The client then receives (72) the 
assigned Viewer ID and a successful iostallation is thus completed. 
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The system of the illustrated embodiment allows the client user to browse 
through the music library and view a selected portion, e,g., the first page, of musical 
scores prior to consummating a transaction by purchasing a music copy or paying a 
license fee. Fig. 4 illu5trates the associated prc-purchasc music download function. 
The tiinction is initiated when the client selects a score to sample and requests (74) 
the music from the server. In ttds regard, the score may be selected from a list of 
titles by scrolling through the library and cUcking on a selected title, by using a 
search function to call a title, or by any other apprc^snatc means. The Vle'^^^^ ID is 
also sent to the server at this time. Upon receiving the request, the server finds (76) 
the requested musical score, compresses and encrypts (or partially encrypts) the score 
as will be described below, and stores the encr^'pied score in the download area. In 
addition, the server assigns and logs a decr^'ption key that is xmique to the client and 
also logs an identification code for the score, the download IP, and the Viewer ID for 
the transmission. For example, the key can be a password composed of two 32 bit 
numbers where one of the numbers is an index to identify the client in a client 
database and the other number is random, or encoded with additional information as 
desired. By indexing the key or password to the client database in this manner, the 
password can be used to identify the client, look up license or account information 
and otherwise monitor distribution on a client-specific and transaction-specific basis. 

Tne server then sends (78) the client the Uniform Resource Locator (URL) 
address of the newly encrypted music. Upon receiving (80) the UTUj, the client can 
request (82) a download of the file or files containing the encrypted music. The 
server then finds (84) the encrypted music in the download area, queues up the music, 
and downloads (86) the music to the client. The client receives (88) the encrypted 
music and stores the music in memory, e.g., completer memory, hard drive storage, 
etc. At this point in the illustrated implementation, i.e., prior to purchase, only the 
first page of the score is not encrypted. Accordingly, the client user can play and 
view (90) the first page of the music to verify that the downloaded score is the score 
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desired by the user and to otherwise evaluate purchasing options. 

AftCT thus browsing through the music library and sampling one or more 
scores, the client user may decide to n3akc an on-line music purchase, e.g., to 
purchase a copy of the music in sheet znusic form, or to pay a license fee to print 
copies, view the music in its entirety » play back the music on the client's I/O 
hardware, or otherwise use the music. Such a ik:ense may be for single use, multiple 
use, unlimited use during a license term, etE. Fig. 5 illustrates the on-line purchase 
function. The function is initiated by the client by sending (92) payment information 
(for example, a credit card account number and expiration date, or the tmmbcr of a 
previously established, pre-paid or unpre-paid account with the server institution), the 
score ro, the download IP, Viewer ID and/or any other information to the server. 
Some or all of this information may ha;^e already been transmitted lo the server in 
connection with browsing the music library and would not necessarily have to be rc- 
tiansmilted- The exchange of personal and financial information can be encrypted 
using standard public key encr3fption as provided, for example, in the Secure Sockets 
layer of the browser. 

Upon receiving (94) this infoimaiion, the server downloads the score and 
Viewer ID, and contacts the client user's fmancial institution or a credit card s^proval 
service, looks up balance information, or otherwise obtains authorisaTion for the 
transaction. Based on the results of tliis authorizalioa inquiry, the server sends back 
(96) to the client either a had payment message (e,g, "payment. declined"), or the • 
scr\'cr sends a decryption password and logs tiic password and other transaction 
information in its database. By operation of the Music Viewer software, the client 
then receives (98) the password and stores the password in a password database 
separate from the downloaded music. It will thus be difficult for a client user lo - 
improperly redistribute music because the user will generally not be aware that a 
decryption password has been stored in its system, nor will the user know how to 
access the password. In operation, the Music Viewer software monitors client 
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messages until it receives (100) an "open fiJe" message indicating that the laser 
desires to print, playback or otherwise use the music' At this time, the Music Viewer 
locates (102) the password, which may be stored in a client cache for speed of 
operadon. The Music Viewer can also retrieve license information relevant to the 
client's access request and, in appropriate cases, increment the client use count under 
the license as discussed below, ^ If the client has remaining uses under a license, the 
Music Viewer decrypts the score in mcmoiy. It will be noted that the music is never 
saved in decrypted form, but is only decrypted just-in-time for a requested use, 
thereby discouraging inqjroper redistribution. 

Fig. 6 iDustrates a music printing function according to the invention. As 
previously noted, after downloading music and a password, the Music Viewer 
monitors client messages to identify access requests. When a print command is 
received (104), the Music Viewer consults its client database to determine (106) 
whether there ace any xeiuaiiiiiig prinicuts allowed under the license previously 
purchased by the client user. In this regard, the client user may have payed a single 
use or multi-use license fee. If the license has been exhausted, the client is notified 
(108) accordingly, and irLformatLon may be provided concerning opLions for paying a 
further license fee. Otherwise, the Music Viewer encodes (110) various information 
regarding the transaction in the user database, e.g.. Viewer ID, score ID, downlead 
ID, date, time and ninnber of licensed printouts used. This information can be 
encoded* for example, in a hase 72 number string in an appropriate format, and then 
printed (1 12) on the copy (e.g., next to tlie copyright notice). Similarly, this same 
identification information can be wrinen into a comment statement of a MIDI file to 
tag MIDI extractions. This information allows for proper incrementing of a multi-use 
license and also allows for subsequent tracking of any improper redistribution of the 
printed copy. In this regard, if a printed copy of ihe score or MIDI file is found, the 
associated transaction and client can be readily decoded. 

Insiead of, or in addition to printing the music, the on-line user may desire to 
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view the music on a monitor. For example, the music may be viewed in conjunaion 
with playing back the music for enhanced eTyoyment, or the music may be displayed 
to facilitate selection of playback options involving tempo, instrumentation and the 
like. Fig- 7 illustrates the associated music viewing function. Upon receiving (114) a 
display command, the Music Viewer opens (116) the requested music file and 
determines (1 1 8) whether the file is encrypted. If the music is not encrypted, e.g. , 
because it has been decr>*pted in a previous step or is public domain music, the music 
can be durectly displayed (124). However, in the case where the music is encrypted 
with the exception of the first page for sampling, the Music Viewer proceeds to 
display (120) the first page and disable printing or MIDI extraction. If the client user 
then attempts to display the remainder of the music, the Music Viewer first 
detcnnines (122) whether a valid and unexpired password has bsen assigned to the 
user. If so, the music is decrypted and displayed (124), Otherwise, an error message 
is displayed (126). 

Figs. 8 and 9 illustrate one implementation of the encryption/decryption 
function of the music distribution monitoring system. It will be appreciated that any 
suitable technique, including using a public key encryption/decryption algorithm, can 
be employed as the base level encryption/decryption technology in accordance with . 
the present invention. In addition, the base level encryption/decryption technology 
can be implemented in hardware and/or software logic. The following description 
illustrates one exemplary implementation. Referring first to Fig. 8, the 
encryption/decryption components are schematically shown. On the server side, the 
encrypuon/decryption subsystem 126 includes compression logic 128, random 
number generator 130 and exclusive OR PCOR) gate 132. The compression logic» 
which can be a conventional data compression software program or a data 
compression hardware package, receives the raw digital musical score and 
compresses the score for transmission: It will be appreciated that this compression, 
in addition to improving transmission speed, enhances subsequent encryption as the 



(2 8) 



0-301 9 0 4 



13 



compressed aod encrypted data will be especially difficult foi an intercepting party to 
decipher. The random number generator 1 30 car include one or more conventional 
random number generating programs . In this regard, two such progranis can be 
employed to handle the two 32 bit words of the decryption password. The random 
number generator 130 implements an algorithm for generating a determined series of 
values starting from an initial seed. In the illustrated embodiment, the assigned 
password is provided to the generator 130 as a seed. The generator 130 also receives 
an input irom the compressed data stream line that triggers the generator 130 such 
that the generator 130 outputs a bit stream equal in length to and coordinated with the 
compressed data stream. The generator output and compressed data stream are used 
as the two it^Hits into the XOR gate 132 which performs its characteristic disjunctive 
comparator function. The output from XOR gate 132 is transmitied over the network 
to the client. 

On Uic client side, the subsystem 126 includes a client- side random number 
generator 134 and client-side XOR gate 136, each identical lo its server-side 
counterpart. The subsystem 126 further includes decompression logic 138 that is the 
logical complement of compression logic 128. The random number generator 134 
uses the password as a seed, and generates a bit stream of length determined by an 
input from the encrypted data stream. It will thus be appreciated that the output bit 
stream from generator 134 will be identical to that of generator 132, this output, and 
the encrypted data stream, serve as the two ii^ts into XOR gate 136. The 
successive operation of the XOR gates 132 aiKi 136 yield an output from XOR gate 
136 that is identical to the output from compression logic 128» i.e., a compressed 
digital music score. This compressed score is decompressed by decompression logic 
138 to yield the digital score in uncompressed, decrypted form. It should be noted 
that the musical sccre is decrypted as part of the music output process, not prior to 
saving the score. Additionally » the encryption/decryption process can be successively 
performed on page-sized chunks ia the case of printing, or on appropriately-sized 



(2 9) 



i^r^^^ 10-301904 



14 

portions of an audio output (e.g., two seconds of the icore), in 0Tx3er to allow for 
display/play-back on an as-rcady basis. 

The encryption/dectyption process is sumniaTizcd in the flow cban of Fig. 9. 
The process is initiated, on the server side, by receiving (140), or calling from 
memory, a digiul representation of the musical score. The digital representation is 
then, in sequence, couipressed {142), encrypted (144) and tiansmiLied (146) across the 
network to the client. On the client side, the signal is first decrypted (148) to obtain a 
compressed digital representation, and then decompressed (150) to obtain the digital 
score. The score can then be output (152) as desired by the client user. 

The followmg prophetic example illustrates the overall operation of the music 
distribution monitoring system of tlie present invention. A client accesses the music 
distribution server at its World Wide Web site using, for example, the Microsoft 
Internet Explorer 3.0 browser. From ilie server home page, the user first selects the 
option for downloading the Music Viewer program. After sclcaing this option, tlie 
user follows the prompts or instnictions to install the software and, in the process, 
enters various nequested identification data. The user may then return to the home 
page and select the music library option to browse the available selections. The user 
can then scroll through the available selections to identify a score of interest, for 
example, "Mo2art*s Sonata Number 1," In order to verify that this is the piece that 
the user has in miiid, the user may download the score for sampling. TThe Music 
Viewer software stores the partially encr>^ted digital score and will allow the first 
page of the score (which is transmitted in unencrypted form) to be displayed on the 
client monitor and played hack. 

After one or more scores are thus sampled, tlie user may decide that he desires 
to print, view or otherwise use a digital score and that he therefore desires to 
purchase a copy of or pay a license fee for the score. The user can then select a 
purchase function and a menu of purchase options will be provided, e.g. , single print 
license, multi-print iiccnsc, unlimited viewing license for a given license term, etc. 
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The user selects the desired option, responds to a series of pron^ts concerning 
identification informatiori and payment information, e.g., by entering a credit card 
number and personal infoixnation. If payment is approved, the user will be assigned a 
decryption password that is indexed to the client's identifying information in a client 
database held by the server. By way of example, the client may pay a license fee for 
ten printouts. In tfac same or subsequent sessions, the client can request a printout -. 
under the license. The system will ke^ track of the number of printouts used and 
allow printing only so long as the license is UEicxhaustcd. WbcneYcr the user prints 
out a copy of the score, an encoded string of characters is printed next to the 
copyright notice. 

An unscrupulous user may attempt to redistribute the music with disregard for 
the server/copyright holder's rights. Having the downloaded music file on his 
system, the user may attempt to redistribute the music electronically. However, 
having thus anempted to wrongfully redistribute the music, the user will discover that 
the redistributed information cannot be used because it is encrypted. Such a user may 
attempt to break the encryption code and may even ultimately surmise that a key has 
been stored in the client's memory somewhere separate finom the music file. In the 
unlikely event that the user should succeed in redistributing the music logether with 
the password in useable form, the infringing user will have imwittingly left a record 
of his infringing activity in the farm of the personal infonnation that can be derived 
from the client/transaction encoded password. Similarly, redistribution of printed 
copies or MIDI files will provide a record due to the coded character string ircludcd • 
with the copyright ixjticc or in ccmmem statements. In any event, the coded 
information facilitates enforcement and thus discourages infringement. 

While various emlxdiments and applications of the present invention have 
been described in detail, it Is apparent that further modifications and adaptations of 
the invention will occur to those skilled in the an. However, it is ro be expressly 
understood that such modifications and adaptations are wiihin the spirit and scope of 
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the present invention. 
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17 
CLAIMS 

1 . A mettod for use in monitoritig distribiition of inibnnation accessible 
through a public network said infannation included in a database at a ser\'er of said public 
network, comprising the sxeps of: 

encrypling at least a first portion of said infonnatian using a key-based 
encryprion system, said key-based encryption system lequiring .entry of a key to decrypt said 
encrypted information; 

in connection with a request by a network client, assigning a first 
client-specific key to said client for decrypting said encrypted information, said first 
client-specific key including ar least a first identifier useful for identi^^iiig said client; and 

transnaitting said first client-specific key to said client, wherein said key can be 
used to monitor distribution of said information on a ciient-specitlc basis. 

2. A metliod as set forth in claim 1 wherein said infocinaticn comprises a 
digital musical score and said step of encrypting at least a portion of said information 
camprises retaining a second portion of said digital musical score in an unencrypted form so 
as to allow for sampling of said digital musical score prior to decryption. 

3. A method as set forth in claim 1 wherein said step of assigning said 
first client-specific key comprises acquiring identification information regarding said client 
and encoding said identifier -wrth respect to said acquired identification information. 

4. A method as set forth in claim 3 wherein said ideniifier comprises a 
passwcird thai is indexed to a client database including said identification iirformation. 

5. A method as set forth in claim 3 wherein said identifier includes 
information for identi^fying client eq-aipmcnt. 
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6. A method as set forth in cJaim 3 wherein said identifier includes 
infoimalion foi identiiying a cliait user. 

7. A method as set forth in cJaim 1, further comprisdng the step of 
transmittLng said encryfrtcd infoimation to said client prior to said step of transmitting said 
first client-specific jkey. 

y 

S. A method as set forth iji cialsxi 1, further cxunprising the step of 
transmitting accessing software to a client, said accessing software being operative for 
allouing said client to access said information in said database. 

9. A method as set forth in claim 8, further comprising the step of 
employing said accessing software to print a copy of said information. 

10. A method as set forth in claim 8 wherein said informatioji com.prises a 
digital representation of a musical score, and said method further comprises the step of 
employing said accessing software to play back said musical score. 

11. A method as set forth in claim 8, further comprising the step of 
displaying said information. 

12. A method as set forth in claim 1 wherein said step of assigning said 
first client- specific key is conducted in response to receiving said request by said client 

13. A method as set forth in claim 1, further comprising the steps of 
storing said information in a first area of memory and storing said first key in a second area of 
memory separate from said fust area, wherein said information and said first key can be 
separately accessed. 
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14. A method as set forth in claim 1, furtber comprising the steps of 
stoiing said information in a client memory in encrypted fomi, receiving a request to output 
said infonnationj and decrj'ptiiig said encrypted information in response to said output 
request. 

15. A method as set forth in claim ], further comprising the steps of 
receiving an access request from a second neiwork client requesting access to said 
information and assigning a s«X3nd client-specific key, different fram said first client-specific 
key, to said second client for decrypting said encrypted information. 

16. A method as set forth in claim 1, further comprising the step of using 
said first client-specific key to track subsequent redistribution of said information. 

17. A method as set forth in claim 1, further comprising the steps of 
outputting an output copy of said information and embedding identification information in 
said output copy, wherein said identLfication information facilitates tracJcing of redistribution 
of said information. 

13. A computer system for use in monitoring distribution of protected 
inforaiation accessible through a public network, comprising: 

a first area cf memory tor storing a database including said protected 

information; 

a controller operative for receiving an access request from a network client 
requesting access to said protected information, obtaining identification information iiseful 
for identifying a source, and assigning a decryption key using said identification infomaation; 
and 

encryption logic for encrypting said protected information based on said 
decryption key v^erdn said deciyption key is useful for decrypiing said encrypted protected 
information. 
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19. A computer system as set fDrth in claim 18, fuither comprising a 
second area of memoiy for storing said identification infomatipn, wherein said identificatton 
infoimatioii is indexed to said decryption key. 

20. A system as set forth, in claim 18 or 19 wherein said coatroJlcr is 
further operative for receiving payment informatioii from a ciient, wherein said decryption 
key is ass^ned in response to receiving said payment infcrmation. 

21- A system as set forth in daim 18. 19, or 20 wherein said protected 
information comprises a digital musical score and said encryption logic is operative for 
partially encrypting said score. 



22. A system as set forth in claim 18, 19, 20, or 21 wherein the source is 
said network client 
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Abstract of the Disclosure 

ENCRYPTION SYSTEM WITH TRANSACTION CODED DECRYFHON KEY 

The encryption secured computer system (10) includes a server (12) that 
conununicates with clients (14-20) across a public network (21) using a novel 
transaction coded decryption key technology that discourages wrongful redistribution 
of protected information such as digital musical scores, and allows for tracking of 
infringing activity. In one implementation, the server (12) distributes access software 
and partially encrypted musical scores to clients upon request. A client can sample 
the partially encr>'pted scores prior to consummating a transaction. When a score is 
selected, the client enters payment information and is assigned a password that is 
specific to the client and transaction. The password ftmctions as a decrj^tion key to 
enable use of the musical score by the client employing the access software. Any 
subsequent wrongful redistribution of the musical score together with the decryption 
password can be traced due to client identifying information encoded into the 
password. 
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